What is the best method to restrict CA ACF2 users who have a blank UID and no TSO privileges from accessing the mainframe via FTP?

book

Article ID: 105632

calendar_today

Updated On:

Products

CA ACF2 CA ACF2 - DB2 Option CA ACF2 for zVM CA ACF2 - z/OS CA ACF2 - MISC

Issue/Introduction


 

What is the best method to restrict users who have a blank UID and no TSO privileges from accessing the mainframe via FTP? 

Environment

Release:
Component: ACF2MS

Resolution

Adding NO-OMVS to the users logonid will stop all access to OMVS.
 
CHANGE logonid NO-OMVS

Additional Information

NO-OMVS|NONO-OMVS
Specifies that this user cannot use any z/OS UNIX System Services. NO-OMVS overrides any user OMVS profile record defined for the user. This user cannot use the defaults specified in the DFTUSER or DFTGROUP fields of the GSO UNIXOPTS record. (Bit field)

https://docops.ca.com/ca-acf2-for-z-os/16-0/en/administrating/administer-records/logonid-records/logonid-record-sections-and-fields